Destide@feddit.uk to Games@lemmy.worldEnglish · 4 days agoBattlefield 6 cheats day 1 of early access. Depite kernel level anti cheat, forced secure boot TPM 2.0youtu.beexternal-linkmessage-square214fedilinkarrow-up1505arrow-down110cross-posted to: [email protected]
arrow-up1495arrow-down1external-linkBattlefield 6 cheats day 1 of early access. Depite kernel level anti cheat, forced secure boot TPM 2.0youtu.beDestide@feddit.uk to Games@lemmy.worldEnglish · 4 days agomessage-square214fedilinkcross-posted to: [email protected]
minus-squareLimonene@lemmy.worldlinkfedilinkEnglisharrow-up4arrow-down1·4 days agoA person with physical access can tamper with the OS, then tamper with the signing keys. Most secure boot systems allow you to install keys. Secure boot can’t detect a USB keylogger. Nothing can.
minus-square9tr6gyp3@lemmy.worldlinkfedilinkEnglisharrow-up1·3 days agoThe signature checks will immediately fail if ANY tampering has occurred. Adding a USB keylogger that has not been signed will cause a signature verification failure during boot.
minus-squareLimonene@lemmy.worldlinkfedilinkEnglisharrow-up2·3 days agoA USB keylogger is not detectable by the computer, not in firmware nor operating system. It passively sniffs the traffic between the USB keyboard and the computer, to be dumped out later.
minus-square9tr6gyp3@lemmy.worldlinkfedilinkEnglisharrow-up1·3 days agoIf your keys are stored in the TPM for use during the secure boot phase, there will be nothing for it to log.
A person with physical access can tamper with the OS, then tamper with the signing keys. Most secure boot systems allow you to install keys.
Secure boot can’t detect a USB keylogger. Nothing can.
The signature checks will immediately fail if ANY tampering has occurred.
Adding a USB keylogger that has not been signed will cause a signature verification failure during boot.
A USB keylogger is not detectable by the computer, not in firmware nor operating system. It passively sniffs the traffic between the USB keyboard and the computer, to be dumped out later.
If your keys are stored in the TPM for use during the secure boot phase, there will be nothing for it to log.